CVE-2012-1090

The cifs_lookup function in fs/cifs/dir.c in the Linux kernel before 3.2.10allows local users to cause a denial of service (OOPS) via attempted accessto a special file, as demonstrated by a FIFO."The cifs code will attempt to open files on lookup under certaincircumstances. What happens though if we find that the file we openedwas actually a FIFO or other special file? Currently, the openfilehandle just ends up being leaked leading to a dentry refcountmismatch and oops on umount."

Ubuntu-Description

A flaw was discovered in the Linux kernel's cifs file system. Anunprivileged local user could exploit this flaw to crash the system leadingto a denial of service.